mailing list archives
RE: VLAN Security
From: "Ethan" <ethan () shame mine nu>
Date: Fri, 7 Feb 2003 10:58:33 -0800
Since you have a seperate management vlan, and it sounds like there is
nothing else in the vlan besides user ports, I haven't heard of any security
advantages to not using the default Vlan. However for organizational and
easier administration it would make sense to use a different vlan for user
ports, especially if you add other user vlans in the future.
From: Naman Latif [mailto:naman.latif () inamed com]
Sent: Thursday, February 06, 2003 11:00 AM
To: security-basics () securityfocus com
Subject: VLAN Security
We have different Cisco Catalyst switches configured for VLANS. With the
1. All trunks have a native VLAN, which is not used by any User.
2. Management VLAN is other than VLAN 1.
We have different VLANs in place, however these are only used for
different Servers ,And all Users are only members of VLAN-1
Does it make sense to have all the user ports migrated to a Different
VLAN (other than VLAN 1) ?
Is there a security advantage in this ?
Regards \\ Naman